Microsoft releases Checked C

The C programming language has been around since the 1970s and it’s been used to create a incredible amount of software. It’s guaranteed to be part of the software you’re using to view this regardless of what you’re using to view it with. But C has some serious drawbacks in that it’s incredibly easy to make serious mistakes that don’t seem obvious until the software is running (and possibly not all time).

But there are follow-on languages that build on C but add features that make some of these errors obvious. Microsoft has one called C# and it’s available for Windows developers to use as part of their Visual Studio developer environment. But lots of programmers, especially those working on open source, are still using regular old C. Recently, Microsoft Research developed Checked C which adds many of the features of C# into C without significantly changing how programmers work or requiring older code to be rewritten. They’ve released it as an open source project for use on Windows and Linux systems and welcome fixes and improvements.

In case you wonder why this is a big deal you need to know that much of the software running on the Internet is programmed in C and many of the security vulnerabilities that have been found and exploited arose from the kind of mistakes that C overlooks. Widespread use of something like Checked C could make a significant improvement in security for everyone.

Leave a Reply